IT- Cyber Security Architect/ Engineer III
PlanIT Group, LLC · Falls Church, VA · 2 mo ago
On-siteEngineeringContract
Key Responsibilities
- AI-Enhanced Pipeline Security: Architect and maintain automated CI/CD pipelines that utilize AI/ML models for static and dynamic analysis (SAST/DAST) to identify complex vulnerabilities that traditional rule-based tools miss.
- Securing AI Workflows: Design security frameworks for the end-to-end AI lifecycle, including securing data ingestion, protecting model weights, and implementing "Guardrail" architectures for Large Language Models (LLMs).
- Intelligent Automation: Develop AI-driven orchestration (SOAR) to automate the triage and remediation of security findings, reducing manual overhead for engineering teams.
- Policy as Code (Client): Implement enterprise-wide governance using tools like Open Policy Agent (OPA) to enforce security compliance automatically across multi-cloud environments.
- Threat Modeling & Red Teaming: Conduct advanced threat modeling for cloud-native applications, specifically accounting for AI-specific attack vectors like model inversion or data poisoning.
- Developer Empowerment: Create self-service security tools and "Golden Paths" that allow developers to deploy securely without friction, fostering a proactive security culture.
Technical Qualifications
- Category - DevOps & Infrastructure: Expert-level experience with Kubernetes, Terraform/Pulumi, and cloud platforms (AWS, Azure, or GCP).
- Category - Security Tooling: Mastery of integrating SAST, DAST, SCA, and Secret Scanning into GitHub Actions, GitLab CI, or Jenkins.
- Category - AI/ML Security: Hands-on experience securing MLOps pipelines and implementing security for AI-integrated APIs.
- Category - Programming: Proficiency in Python, Go, or Bash for building custom security automation and AI-driven scripts.
- Category - Observability: Deep knowledge of eBPF, Prometheus, and AI-powered logging/monitoring tools (e.g., Dynatrace or Datadog).
Preferred Experience
- Experience: 10+ years in IT, with at least 5 years dedicated to DevSecOps leadership in high-scale environments.
- AI Expertise: Proven track record of implementing AI/ML to solve operational or security challenges.
- Education: A degree from an accredited College/University in the applicable field of services is required. Four additional years of related experience if the individual's degree is not in the applicable field.
Soft Skills
- Strong ability to bridge the gap between "Speed of DevOps" and "Rigors of Security" while communicating clearly with executive leadership.
Core Objectives
- Shift Left: Achieve 90% automated security coverage across all production-bound code.
- Mean Time to Remediate (MTTR): Utilize AI to reduce vulnerability remediation time by 40% within the first year.
- Innovation: Stay at the forefront of the "AI for Security" and "Security for AI" movements.
Additional Provisions
- Pass a client mandated clearance process to include drug screening, criminal history check and credit check.
- Cannot have more than 6 months travel outside the United States within the last five years.
- Military Service excluded. (Exception does not include military family members.)
- All candidates must be a US Citizen or permanent status Green Card holder.
- All overtime must be pre-approved in writing by the client manager or his/her designated representative.
- The enforced dress code is business casual, i.e., collared shirt with slacks for men, no skirts above the knee for women.